ProductServicesTrainingBook a Call
Get startedPatient accessClinician workflowBackendNetworkDirectoryAPI Reference

Medblocks-hosted page

The least-code way to connect a patient. Start a session, send them to the URL you get back, and let Medblocks render the page where they find their hospital and approve.

Once you have a patient_id, start the browser journey that lets the patient approve access. This is the simplest way to connect a patient. Your app starts a patient session, sends the patient to the returned url, and lets Medblocks render the page where the patient finds their hospital or clinic. After the patient chooses a connection, they sign in to that patient portal and approve access for your app. They return to the return_url you set.

The Medblocks-hosted page where a patient searches the connection catalog for their hospital
On the Medblocks-hosted page, the patient searches the connection catalog before signing in to their patient portal.

Start the session

Use this page when you want the patient to choose their connection after they leave your app. Your server starts the session with the patient’s ID and a return_url, and Medblocks returns a url for the patient. If you already know likely connections, pass them as recommended_connection_ids so they appear first.

If your app already has the exact connection the patient chose, use your own UI instead. That path sends the patient straight to that facility’s patient portal.

Your API key is a secret that lives only on your server, so the browser calls a route on your server and never the Medblocks API directly. The browser fetches that route and redirects the patient to the url it returns.

server/start-patient-session.ts
import { mb } from "../medblocks";

export async function initPatientSession(input: { patientId: string }) {
  const session = await mb.patientSession.init({
    patient_id: input.patientId,
    return_url: "https://app.example.com/connected",
    return_button_label: "Back to Acme Health",
  });

  return { url: session.url };
}
Parameters
patient_idstringrequired

Your stable identifier for this patient.

patient_emailstring

Patient email to store or update.

patient_namestring

Patient display name to store or update.

recommended_connection_idsstring[]

Connection IDs to show first on the Medblocks-hosted page. Mutually exclusive with connection_id.

return_urlstringrequired

URL to redirect after the patient session.

return_button_labelstring

Text shown on the patient-facing completion button.

metadataobject

Additional metadata returned with the patient session.

Parameters
AuthorizationBearer <token>required

Medblocks API key for server-side requests.

Versionstring

Date-pinned API version. If omitted, Medblocks uses the version pinned on your API key.

src/start-patient-session.ts
async function startSession(patientId: string) {
  const response = await fetch("/api/patient-sessions", {
    method: "POST",
    headers: { "Content-Type": "application/json" },
    body: JSON.stringify({ patientId }),
  });

  const { url } = await response.json();
  window.location.href = url;
}
Parameters
patient_idstringrequired

Your stable identifier for this patient.

patient_emailstring

Patient email to store or update.

patient_namestring

Patient display name to store or update.

recommended_connection_idsstring[]

Connection IDs to show first on the Medblocks-hosted page. Mutually exclusive with connection_id.

return_urlstringrequired

URL to redirect after the patient session.

return_button_labelstring

Text shown on the patient-facing completion button.

metadataobject

Additional metadata returned with the patient session.

Return button

The hosted page ends on a Medblocks completion screen. At the bottom of that screen, Medblocks shows a button that sends the patient back to your app.

  • return_url is the destination for that button.
  • return_button_label is the button text the patient sees.

Use product-specific wording. Back to Acme Health, Continue, or Return to intake read better than a generic label.

The Medblocks completion screen with a labelled button that returns the patient to your app
The hosted page shows your return button after the patient finishes connecting records.

When the patient taps the button, Medblocks redirects to your return_url with the patient ID and the patient session ID.

https://app.example.com/connected?patient_id=user_42&patient_session_id=ps_...
Parameters
patient_idstringrequired

Your developer-supplied external patient id. Use this to look up the patient via GET /patients/{id}.

patient_session_idstringrequired

The ps_* public id of the completed patient_session.

Pass recommended_connection_ids when you already have a good guess at which facilities the patient uses. Those connections appear at the top of the hosted search, and the patient can still search for any other facility.

A recommended connection surfaced at the top of the hosted search and selected by the patient
Recommended connections appear first, but the patient can still search for other facilities.

Omit recommended_connection_ids when you do not have suggested facilities to show first.

Next step

The patient lands on your return_url with patient_id and patient_session_id in the query string. Continue to Handle the return to read those params and show which facilities connected.

Common errors

CodeMeaning
invalid_api_keyThe API key is missing, invalid, or expired.
unsupported_api_versionThe Version header is not supported.
resource_not_foundA recommended connection ID does not exist or is not visible to your organization.
bad_requestRequest fields are missing, malformed, or mutually exclusive.

Read the full envelope and code list in Errors.

See also

Create a patient session

Pick who renders connection search. Let Medblocks host the page, or build it into your own UI.

Your own UI

Build connection search into your own app, then send the patient straight to the facility they chose.

On this page

Start the sessionReturn buttonRecommended connectionsNext stepCommon errorsSee also